$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/208C9AF2E59EAA30DB13E50969BD866B673DAB68.cer File: 208C9AF2E59EAA30DB13E50969BD866B673DAB68.cer (raw, json) Hash identifier: jwfCLp61F9COyqnFd366qD7oJRE7AeGXYrqMXd+u728= Subject key identifier: 20:8C:9A:F2:E5:9E:AA:30:DB:13:E5:09:69:BD:86:6B:67:3D:AB:68 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 05ED0909B45D38F1BCB4F711C9E2ECE7E8FC98B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/208C9AF2E59EAA30DB13E50969BD866B673DAB68.mft caRepository: rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:59 +0000 Certificate not after: Mon 10 May 2027 15:50:59 +0000 Subordinate resources: AS: 131663 IP: 103.130.100.0/22 IP: 2403:b7c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ed:09:09:b4:5d:38:f1:bc:b4:f7:11:c9:e2:ec:e7:e8:fc:98:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:59 2026 GMT Not After : May 10 15:50:59 2027 GMT Subject: CN=208C9AF2E59EAA30DB13E50969BD866B673DAB68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a7:48:a6:01:be:eb:dd:4b:e2:8a:b4:7c:9d: 64:aa:3c:74:a5:52:24:3d:d1:d0:64:48:b0:23:85: 05:71:3a:8a:6f:8f:d7:8a:2c:cb:e5:2e:7c:2a:df: 6a:39:da:c7:b7:18:d1:b1:b2:ab:7f:66:d8:ff:f1: 31:10:41:78:6a:0b:99:7f:94:32:3f:76:cd:7d:f7: 82:6f:92:26:90:23:3d:20:09:73:9b:e1:8e:a8:f1: 59:30:47:08:04:21:92:6b:81:bd:14:30:d7:7f:38: 1a:55:6f:97:84:5a:21:40:1d:77:27:52:d8:cd:f6: ab:97:a9:dc:bc:99:45:7f:01:b9:43:36:50:e1:89: 61:80:33:ab:bc:70:54:91:c6:35:f4:f8:9d:c2:e0: 54:80:5f:2c:bc:e3:2f:e2:40:be:cd:88:8b:d6:72: 4a:c4:0e:d6:57:76:86:f0:e7:22:f9:1c:1a:dd:a9: cd:1c:9a:1e:fa:d3:46:ae:69:19:b6:de:64:72:23: ca:67:32:0a:c6:f6:93:92:e6:37:4f:59:b7:45:b5: 41:f3:6e:f9:01:5f:4e:f2:2c:1d:09:3a:ae:8f:e0: e7:b9:27:a2:2d:09:86:68:93:a0:0e:e9:10:5b:6a: 4f:c8:09:f3:ba:39:49:2d:35:d4:9f:89:5b:aa:ee: 3c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 20:8C:9A:F2:E5:9E:AA:30:DB:13:E5:09:69:BD:86:6B:67:3D:AB:68 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/208C9AF2E59EAA30DB13E50969BD866B673DAB68.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.100.0/22 IPv6: 2403:b7c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131663 Signature Algorithm: sha256WithRSAEncryption 5e:80:2d:9c:eb:12:10:25:d9:d7:33:6a:90:70:10:42:1a:66: d2:ca:7f:27:01:47:13:05:6f:86:48:96:0b:05:b6:36:c5:ce: f2:ed:68:be:64:b6:4b:f1:86:07:8a:dd:07:06:24:95:fd:ba: 48:1c:94:a1:3d:11:20:84:39:27:53:eb:9e:a3:7a:ce:c8:e2: 2d:78:2f:9b:6b:ae:b5:3d:2f:b3:2f:27:9f:d4:04:56:bb:65: da:49:02:f5:31:3a:a1:15:d2:59:a1:34:c0:cb:4c:de:0b:a5: 44:7f:89:48:52:78:8b:dd:78:77:bd:80:cc:3d:2a:4c:66:29: e5:56:86:06:a4:ea:bb:96:40:29:96:27:de:04:fd:47:09:2b: 7e:bb:63:bf:88:c7:24:84:a9:76:c2:89:20:7e:18:5e:19:98: f4:4e:f8:41:2d:eb:c5:8a:fc:96:d2:e2:f9:27:f3:bd:23:f9: 9c:b9:e1:0a:a0:a2:32:70:8f:9e:06:5a:fe:9e:be:0b:3a:d2: 7b:c6:de:3e:d1:85:40:d2:89:66:08:54:02:4e:71:d3:f9:b3: 9f:a8:18:03:22:9a:c8:7f:4d:92:05:9c:8d:ee:1d:72:48:4b: 14:eb:93:20:5f:52:e6:b2:14:53:fa:9b:6c:53:ce:de:6b:b2: 5f:88:7c:11 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgIUBe0JCbRdOPG8tPcRyeLs5+j8mLUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDU1OVoX DTI3MDUxMDE1NTA1OVowMzExMC8GA1UEAxMoMjA4QzlBRjJFNTlFQUEzMERCMTNF NTA5NjlCRDg2NkI2NzNEQUI2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO6nSKYBvuvdS+KKtHydZKo8dKVSJD3R0GRIsCOFBXE6im+P14osy+UufCrf ajnax7cY0bGyq39m2P/xMRBBeGoLmX+UMj92zX33gm+SJpAjPSAJc5vhjqjxWTBH CAQhkmuBvRQw1384GlVvl4RaIUAddydS2M32q5ep3LyZRX8BuUM2UOGJYYAzq7xw VJHGNfT4ncLgVIBfLLzjL+JAvs2Ii9ZySsQO1ld2hvDnIvkcGt2pzRyaHvrTRq5p GbbeZHIjymcyCsb2k5LmN09Zt0W1QfNu+QFfTvIsHQk6ro/g57knoi0JhmiToA7p EFtqT8gJ87o5SS011J+JW6ruPHkCAwEAAaOCApUwggKRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCCMmvLlnqow2xPlCWm9hmtnPatoMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HSUdBQllURS8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HSUdB QllURS8wLzIwOEM5QUYyRTU5RUFBMzBEQjEzRTUwOTY5QkQ4NjZCNjczREFCNjgu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAJngmQwDQQCAAIwBwMFACQDt8AwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAgJPMA0GCSqGSIb3DQEBCwUAA4IBAQBegC2c6xIQJdnX M2qQcBBCGmbSyn8nAUcTBW+GSJYLBbY2xc7y7Wi+ZLZL8YYHit0HBiSV/bpIHJSh PREghDknU+ueo3rOyOIteC+ba661PS+zLyef1ARWu2XaSQL1MTqhFdJZoTTAy0ze C6VEf4lIUniL3Xh3vYDMPSpMZinlVoYGpOq7lkAplifeBP1HCSt+u2O/iMckhKl2 wokgfhheGZj0TvhBLevFivyW0uL5J/O9I/mcueEKoKIycI+eBlr+nr4LOtJ7xt4+ 0YVA0olmCFQCTnHT+bOfqBgDIprIf02SBZyN7h1ySEsU65MgX1LmshRT+ptsU87e a7JfiHwR -----END CERTIFICATE-----Generated at Tue May 12 22:32:48 2026 by rpki-client